EUVD-2026-1025

Plexus anblick Digital Signage Management 3.1.13 contains an open redirect vulnerability in the 'PantallaLogin' script that allows attackers to manipulate the 'pagina' GET parameter. Attackers can craft malicious links that redirect users to arbitrary websites by exploiting improper input...

CVE-2025-13699

creationtimestamp| type| source ---|---|--- 2025-11-27 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-1025/ 2025-11-27 22:51:47+00:00| seen| https://gist.github.com/Darkcrai86/9dfce17966ab9913118eb96513ff157a 2026-01-13 15:10:19+00:00| seen|...

EUVD-2014-9046

Malware in sbrugna...

CVE-2021-1025

In hasNamedWallpaper of WallpaperManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is...

CVE-2023-1025

creationtimestamp| type| source ---|---|--- 2025-02-26 21:25:38+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5620...

CVE-2025-1025

creationtimestamp| type| source ---|---|--- 2025-02-05 05:08:11+00:00| seen| https://infosec.exchange/users/cve/statuses/113949546311391296 2025-02-05 05:15:36+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhfsvmo2252f 2025-02-05 07:26:56+00:00| seen|...

CVE-2025-1025

Versions of the package cockpit-hq/cockpit before 2.4.1 are vulnerable to Arbitrary File Upload where an attacker can use different extension to bypass the upload filter...

CVE-2023-1025

CVE-2023-1025 concerns the WordPress plugin Simple File List prior to version 6.0.10. The issue arises from insufficient sanitisation and escaping of certain settings, enabling Stored Cross-Site Scripting (XSS) by high-privilege users (e.g., admin) even when unfiltered_html is disallowed (such as...

CVE-2023-1025 Simple File List < 6.0.10 - Admin+ Stored XSS

The Simple File List WordPress plugin before 6.0.10 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

WordPress Simple File List Plugin < 6.0.10 is vulnerable to Cross Site Scripting (XSS)

Software Simple File List Type Plugin Vulnerable versions 6.0.10 Fixed in 6.0.10 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1025 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 4dbc0bed323f Credits Shreya Pohekar Required...

SUSE CVE-2014-9221

strongSwan 4.5.x through 5.2.x before 5.2.1 allows remote attackers to cause a denial of service invalid pointer dereference via a crafted IKEv2 Key Exchange KE message with Diffie-Hellman DH group 1025...

SUSE CVE-2016-1025

Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2016-1012,...

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2023-1025)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-1025

creationtimestamp| type| source ---|---|--- 2022-07-13 00:25:51+00:00| seen| https://t.me/cibsecurity/46106...

SUSE SLES12 Security Update : java-1_7_1-ibm (SUSE-SU-2022:1025-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1025-1 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization...

RHEL 8 : OpenShift Container Platform 4.10.6 (RHSA-2022:1025)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:1025 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

Important: Red Hat Security Advisory: Red Hat OpenShift GitOps security update

An update is now available for Red Hat OpenShift GitOps 1.3 OpenShift GitOps v1.3.6 for OCP 4.7+ Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

Important: Red Hat Security Advisory: Red Hat OpenShift GitOps security update

An update is now available for Red Hat OpenShift GitOps 1.4 OpenShift GitOps v1.4.4 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Important: Red Hat Security Advisory: Red Hat OpenShift GitOps security update

An update is now available for Red Hat OpenShift GitOps 1.3 OpenShift GitOps v1.3.5 for OCP 4.6 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

CVE-2021-1025

CVE-2021-1025 (Android 12) involves a flaw in hasNamedWallpaper in WallpaperManagerService.java that can reveal whether an app is installed without query permissions, causing local information disclosure without extra execution privileges. The root cause is a missing permission check. Impact is i...